[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: My Assessment of the Heartbleed OpenSSL bug and LedgerSMB

On Thu, Apr 10, 2014 at 3:49 AM, Peter van Bussel <..hidden..> wrote:
To be clear, we aren't directly affected.  The attack is against a web server and there may be plenty of possible and supported configurations that are not affected.  

However, this is a serious situation even if it is not in our code and requires no upgrades of LedgerSMB and I wanted to share my assessment of this with the community.  Virtually every e-commerce site should consider themselves affected too if they rely on OpenSSL.

Best Wishes,
Chris Travers

Efficito:  Hosted Accounting and ERP.  Robust and Flexible.  No vendor lock-in.
Put Bad Developers to Shame
Dominate Development with Jenkins Continuous Integration
Continuously Automate Build, Test & Deployment 
Start a new project now. Try Jenkins in the cloud.
Ledger-smb-users mailing list